The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Special Forums > Security > Malware Advisories (RSS)
Troj_vundo.bmw Troj_vundo.bmw
Google UNIX.COM
Forums Portal Register Rules & FAQ Members List Arcade Search Today's Posts Mark Forums Read


Malware Advisories (RSS) Malware Security Advisories Via RSS

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Troj_vundo.bnx iBot Malware Advisories (RSS) 0 04-09-2008 03:40 AM
Troj_vundo.bfp iBot Malware Advisories (RSS) 0 04-04-2008 02:00 AM
Troj_vundo.bfq iBot Malware Advisories (RSS) 0 04-04-2008 02:00 AM
Troj_vundo.akm iBot Malware Advisories (RSS) 0 04-03-2008 09:50 AM
Troj_vundo.yf iBot Malware Advisories (RSS) 0 01-11-2008 01:20 AM

Reply
 
Submit Tools LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 05-11-2008
iBot's Avatar
RSS Robot Girl
  

Join Date: Sep 2000
Posts: 14,303
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit! Stumble this Post!Spurl this Post!
Troj_vundo.bmw
This Trojan may be downloaded from remote sites by other malware. It may be dropped by other malware. It may be installed manually by a user. It may be downloaded unknowingly by a user when visiting malicious Web sites.

This Trojan creates several folders. It drops several files. The dropped component files are non-malicious files. It then creates a registry entry to enable its automatic execution at every system startup. It also creates registry entries to disable Task Manager. This Trojan displays a desktop wallpaper with a link to a remote URL. Clicking the link will perform a fake scan and redirect to a certain Web site. This site offers a download for a fake PC antispyware and PC Cleaner. Modification of the wallpaper does not a have a harmful effect since this is a user-defined variable. However, a link to the redirect site is provided in the modified wallpaper.


More...
Reply With Quote
Google UNIX.COM
Forum Sponsor
Reply

« Troj_rootkit.be | Troj_drondog.f »
Thread Tools
Display Modes
Linear Mode Linear Mode


The 50 most popular UNIX and Linux searches.
Google Search Cloud for The UNIX and Linux Forums
421 service not available, remote server has closed connection ^m automate ftp autosys awk trim bash eval bash for loop boot: cannot open kernel/sparcv9/unix command copy/move folder in unix curses.h cut command in unix daemon process find grep find mtime find null character in a unix file from ip can we get machine name +unix glance unix grep multiple lines grep or grep recursive how to redirect console logs in unix inaddr_any inappropriate ioctl for device lynx javascript mailx attachment mget mtime perl array length ping port remove first character from string in k shell replace space by comma , perl script scp recursive segmentation fault(coredump) sftp script snoop unix stale nfs file handle syn_sent tar exclude tar extract to folder unix unix .profile unix forum unix forums unix internals unix interview questions unix mtime unix simulator unix.com vi substitute while loop within while loop shell script


All times are GMT -7. The time now is 12:11 AM.

The UNIX and Linux Forums RSS Feeds - Contact Us - The UNIX and Linux Forums - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited.
The UNIX and Linux Forums Content Copyright ©1993-2008 The CEP Blog All Rights Reserved -Ad Management by RedTyger Visit The Global Fact Book

Content Relevant URLs by vBSEO 3.2.0

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101